CVE-2025-61148

Published: Dec 4, 2025Modified: Dec 16, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.8 / Impact: 3.6

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

An Insecure Direct Object Reference (IDOR) vulnerability in the EduplusCampus 3.0.1 Student Payment API allows authenticated users to access other students personal and financial records by modifying the 'rec_no' parameter in the /student/get-receipt endpoint.

Affected (1)

Products: Edupluscampus: Edupluscampus

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Edupluscampus Edupluscampus	Version 3.0.1

Related CWEs

Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

References (3)

https://drive.google.com/file/d/1BRZRurbl7TY6KU4uaelAUn7L9Cn6XfjC/view?usp=sharing

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/sharma19d/CVE-2025-61148

Source: cve@mitre.org

ExploitThird Party Advisory

https://medium.com/@Charon19d/how-i-hacked-all-universities-in-my-city-d6b8e320455c

Source: cve@mitre.org

Product

Timeline

No history available yet.